Abstract: A domain name registrar may provide a service for a domain name registrant to automatically and without further action by the domain name registrant (other than possibly paying for the service) enable secure socket layer (SSL) for a domain name to a third party hosting service, even when the domain name registrar does not own or control the third party hosting service. The invention allows a user (that may or may not be the domain name registrant) to use the domain name registered to the domain name registrant to communicate with a domain name registrant account (possibly a website) on the third party hosting service via a proxy server. The communication between the user and the proxy server may be encrypted such as by the SSL protocol.

Abstract: A domain name registrar may provide a service for a domain name registrant to automatically and without further action by the domain name registrant (other than possibly paying for the service) enable secure socket layer (SSL) for a domain name to a third party hosting service, even when the domain name registrar does not own or control the third party hosting service. The invention allows a user (that may or may not be the domain name registrant) to use the domain name registered to the domain name registrant to communicate with a domain name registrant account (possibly a website) on the third party hosting service via a proxy server. The communication between the user and the proxy server may be encrypted such as by the SSL protocol.

Abstract: A domain name registrar may provide a service for a domain name registrant to automatically and without further action by the domain name registrant (other than possibly paying for the service) enable secure socket layer (SSL) for a domain name to a third party hosting service, even when the domain name registrar does not own or control the third party hosting service. The invention allows a user (that may or may not be the domain name registrant) to use the domain name registered to the domain name registrant to communicate with a domain name registrant account (possibly a website) on the third party hosting service via a proxy server. The communication between the user and the proxy server may be encrypted such as by the SSL protocol.

Abstract: A system and method for domain control validation is presented. At a certificate authority a request is received. The request includes a certificate signing request and a first Internet protocol address. The certificate signing request identifies a domain and a certificate. A second Internet protocol address for the domain is retrieved from a domain name system. When the first Internet protocol address is the same as the second Internet protocol address, the certificate is signed, and the signed certificate is transmitted to a requester of the request. When the first Internet protocol address is not the same as the second Internet protocol address, the certificate signing request is rejected.

Abstract: A system and method for domain control validation is presented. At a certificate authority a request is received. The request includes a certificate signing request and a first Internet protocol address. The certificate signing request identifies a domain and a certificate. A second Internet protocol address for the domain is retrieved from a domain name system. When the first Internet protocol address is the same as the second Internet protocol address, the certificate is signed, and the signed certificate is transmitted to a requester of the request. When the first Internet protocol address is not the same as the second Internet protocol address, the certificate signing request is rejected.

Abstract: A system and method for domain control validation is presented. At a certificate authority a request is received. The request includes a certificate signing request and a first Internet protocol address. The certificate signing request identifies a domain and a certificate. A second Internet protocol address for the domain is retrieved from a domain name system. When the first Internet protocol address is the same as the second Internet protocol address, the certificate is signed, and the signed certificate is transmitted to a requester of the request. When the first Internet protocol address is not the same as the second Internet protocol address, the certificate signing request is rejected.

Abstract: A system and method for domain control validation is presented. At a certificate authority a request is received. The request includes a certificate signing request and a first Internet protocol address. The certificate signing request identifies a domain and a certificate. A second Internet protocol address for the domain is retrieved from a domain name system. When the first Internet protocol address is the same as the second Internet protocol address, the certificate is signed, and the signed certificate is transmitted to a requester of the request. When the first Internet protocol address is not the same as the second Internet protocol address, the certificate signing request is rejected.

Abstract: A system and method for domain control validation is presented. At a certificate authority a request is received. The request includes a certificate signing request and a first Internet protocol address. The certificate signing request identifies a domain and a certificate. A second Internet protocol address for the domain is retrieved from a domain name system. When the first Internet protocol address is the same as the second Internet protocol address, the certificate is signed, and the signed certificate is transmitted to a requester of the request. When the first Internet protocol address is not the same as the second Internet protocol address, the certificate signing request is rejected.

Abstract: Systems and methods are presented relating to the determination of reputation ratings for domain names or collections of domain names. In one implementation, a method includes calculating, by at least one server computer communicatively coupled to a network, a rating for each domain name in a plurality of domain names. The rating of each domain name is based upon reputation data for each domain name. The method includes forming, by the at least one server computer, a report identifying, for each domain name in the plurality of domain names, the domain name and the rating of the domain name, and transmitting, by the at least one server computer, the report to a requester.

Abstract: A method includes calculating, by at least one server communicatively coupled to a network, a rating for a domain name. The rating is based in part on reputation data for the domain name. The method includes receiving, by the at least one server, a domain name query from a requester, and forming, by the at least one server, a listing of candidate domain names using the domain name query. An inclusion of the domain name into the listing of candidate domain names or an order placement of the domain name within the listing of candidate domain names is a function of the rating for the domain name. The method includes returning, by the at least one server, the listing of candidate domain names to the requester.

Abstract: A system and method for domain control validation is presented. At a certificate authority a request is received. The request includes a certificate signing request and a first Internet protocol address. The certificate signing request identifies a domain and a certificate. A second Internet protocol address for the domain is retrieved from a domain name system. When the first Internet protocol address is the same as the second Internet protocol address, the certificate is signed, and the signed certificate is transmitted to a requester of the request. When the first Internet protocol address is not the same as the second Internet protocol address, the certificate signing request is rejected.

Abstract: A system and method for domain control validation is presented. At a certificate authority a request is received. The request includes a certificate signing request and a first Internet protocol address. The certificate signing request identifies a domain and a certificate. A second Internet protocol address for the domain is retrieved from a domain name system. When the first Internet protocol address is the same as the second Internet protocol address, the certificate is signed, and the signed certificate is transmitted to a requester of the request. When the first Internet protocol address is not the same as the second Internet protocol address, the certificate signing request is rejected.

Abstract: A system and method for creating a security certificate is presented. A request for a security certificate is received from a requester. The request includes an identification of a web site or an entity associated with the web site. An applicant for the security certificate is identified using the request, and information about the applicant for the security certificate is retrieved. The information about the applicant includes a name of the applicant. The information about the applicant is analyzed to determine whether the information about the applicant includes personal information of an individual. When the information about the applicant includes personal information of an individual, the security certificate is generated, wherein the security certificate does not include the personal information of an individual.

Abstract: A system and method for creating a security certificate is presented. A request for a security certificate is received from a requester. The request includes an identification of a web site or an entity associated with the web site. An applicant for the security certificate is identified using the request, and information about the applicant for the security certificate is retrieved. The information about the applicant includes a name of the applicant. The information about the applicant is analyzed to determine whether the information about the applicant includes personal information of an individual. When the information about the applicant includes personal information of an individual, the security certificate is generated, wherein the security certificate does not include the personal information of an individual.

Abstract: Methods and systems of the present invention allow for dynamic updates of digital certificates. In one system, a server computer is configured to communicate with a certificate authority via a communications network. The server computer is configured to receive a first security certificate from the certificate authority. The first security certificate has a term. The first security certificate is installed onto the server computer, and at least one of a current time and the term of the first security certificate are analyzed to determine whether the first security certificate is to be updated. When the first security certificate is to be updated, a request for update is transmitted to the certificate authority, a second security certificate is received from the certificate authority, and the first security certificate is replaced with the second security certificate on the server computer.

Abstract: A method includes calculating, by at least one server communicatively coupled to a network, a rating for a domain name. The rating is based in part on reputation data for the domain name. The method includes receiving, by the at least one server, a domain name query from a requester, and forming, by the at least one server, a listing of candidate domain names using the domain name query. An inclusion of the domain name into the listing of candidate domain names or an order placement of the domain name within the listing of candidate domain names is a function of the rating for the domain name. The method includes returning, by the at least one server, the listing of candidate domain names to the requester.

Abstract: Methods and systems of the present invention allow for dynamic updates of digital certificates, such as X.509 SSL certificates. The updates are available via a subscription, where the subscription is a technical, administrative, and/or financial arrangements between a Subscriber and a Certification Authority or between a Hosting Provider and the Certification Authority, which allow for dynamic, and in some embodiments automatic, updates of the Subscriber's certificate. The Subscriber regularly requests updates from the Certification Authority (pull-type methods and systems) or the Certification Authority updates certificates on Subscriber's servers (push-type methods and systems). The invention anticipates a use of short lifespan certificates, which substantially overcomes the issues connected to revoked certificates. If a certificate was revoked it will shortly expire and the Certification Authority would not update it.

Abstract: One embodiment of a system of present invention includes means for obtaining an image from a requester, means for obtaining contact information for vouching people, whom requester identifies as having personal knowledge of the requester, and means for sending an electronic message to the vouching people, with a link to an image lineup. The image lineup contains the image obtained from the requester and other images. The system further includes means for receiving a selection choice from the vouching people, identifying whether the image in the image lineup depicts the requester, and means for calculating a statistical rating of a likelihood that the image obtained from the requester depicts him/her.

Abstract: One embodiment of the present invention envisions providing requester with a computer program for a remote computer equipped with a scanning device. The computer program controls the scanning device and prevents alterations to an image produced by the scanning device. The unaltered image of a photo ID is transmitted from the remote computer to the verifier's server computer. The image of the photo ID may further be used to verify the requester by comparing the image to photographs from other sources.

Abstract: One embodiment of a method of the present invention provides for obtaining an image from a requester, obtaining contact information for vouching people, whom requester identifies as having personal knowledge of the requester, and sending an electronic message to the vouching people, with a link to an image lineup. The image lineup contains the image obtained from the requester and other images. Then receiving a selection choice from the vouching people, identifying whether the image in the image lineup depicts the requester, and calculating a statistical rating of a likelihood that the image obtained from the requester depicts him/her.